This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft File: XnKqfVsdVjLl0z_scvp0M_Sc4po.mft (raw, json) Hash identifier: 1eEbGtHgwkkng+tdgkEscgthRPx7Fk9NWf0PFqobk5c= Subject key identifier: CB:64:34:F4:5D:0C:88:EC:D8:62:1F:A9:15:59:4E:03:5E:24:E5:79 Authority key identifier: 5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A Certificate issuer: /CN=A91C9E82/serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Certificate serial: 01DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft Manifest number: 01B8 Signing time: Fri 05 Dec 2025 01:39:33 +0000 Manifest this update: Fri 05 Dec 2025 01:39:33 +0000 Manifest next update: Fri 12 Dec 2025 01:39:33 +0000 Files and hashes: 1: XnKqfVsdVjLl0z_scvp0M_Sc4po.crl (hash: +n8AhT7YmGJEFRzI0dEiwscNn5oZ8cjrOM+mhJmvTlM=) 2: 36C31E00637111EEA51CA05EC4F9AE02.roa (hash: lY96nEi5CKYTXJTj1z2X+4msAEH0lgBh87K7FsjTVZ8=) 3: 00E626A4A57611EF98285E5FC4F9AE02.roa (hash: 08NPSGEr7+x4MzDThoj8ZzRXxZk450XlydgirrF3WE4=) 4: 98BE8828663D11EE8CBBAE7CC4F9AE02.roa (hash: OnFM4tWhowHbvjU4usSptKOpZeLKLT7QxFEJy+UEpYk=) 5: 99341DD6663D11EE8CBBAE7CC4F9AE02.roa (hash: Kt+JRZe4NSSBGcnDuKjJxIa0JojNpdBSE93Vqrzpq7E=) 6: 678C24C0663F11EEBD955D43C4F9AE02.roa (hash: Rlo1FH4ToBEybkPEC2r5mS4GIe86F2K5uAovVfJDrI8=) 7: 9830B6D8663D11EE8CBBAE7CC4F9AE02.roa (hash: RmkIIPTPM365rnHi3iyE65DKC/DdOKV16KKoUBGaAYI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 12 Dec 2025 01:39:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 478 (0x1de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C9E82, serialNumber=5E72AA7D5B1D5632E5D33FEC72FA7433F49CE29A Validity Not Before: Dec 5 01:39:33 2025 GMT Not After : Dec 12 01:39:33 2025 GMT Subject: CN=693237d5-057e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b5:ff:c7:ed:93:8f:a6:c9:b4:50:0d:b0:47: e2:a1:1f:31:d8:8a:8d:72:b4:f2:af:6c:1a:e5:50: ec:5e:29:cd:97:d6:13:ac:4a:fc:46:26:5e:0b:7f: 24:20:bf:dc:ee:16:d1:bc:08:0e:86:2f:fa:a8:9d: 27:f4:d9:39:7f:1d:ce:e8:30:70:b8:64:4e:cc:8f: 22:99:9c:29:73:02:b8:dd:f7:a8:d7:b1:f6:d5:57: 37:12:76:d5:44:67:39:69:31:27:cd:de:d9:d9:b1: 0c:67:23:52:ce:6e:93:8b:80:5a:8a:e5:f9:9e:55: d5:97:f3:62:5b:db:24:fe:ff:25:bf:07:d5:a2:21: 85:fb:ef:10:3e:53:99:64:b4:cf:70:7f:0c:70:76: 69:a1:0b:63:6b:22:35:59:59:a1:89:96:a6:7c:dd: 1f:32:59:0f:e8:d6:43:db:ab:ae:db:64:64:f1:d8: 96:7b:2c:67:70:dd:a8:ea:f0:fb:5d:a2:78:d0:d2: 9f:ca:d4:27:23:5e:a0:01:63:4f:41:4c:ff:59:6a: 64:f2:3d:c2:8d:e8:ff:21:76:14:70:00:37:17:f2: 91:48:77:b5:ac:91:ad:b0:09:9e:c5:ca:71:d3:53: e4:c7:93:20:bd:5c:f0:4b:02:fa:4f:a5:c9:bd:55: 36:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:64:34:F4:5D:0C:88:EC:D8:62:1F:A9:15:59:4E:03:5E:24:E5:79 X509v3 Authority Key Identifier: keyid:5E:72:AA:7D:5B:1D:56:32:E5:D3:3F:EC:72:FA:74:33:F4:9C:E2:9A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XnKqfVsdVjLl0z_scvp0M_Sc4po.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C9E82/EA7E5FA6636F11EE97C74B5CC4F9AE02/XnKqfVsdVjLl0z_scvp0M_Sc4po.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 36:d6:ec:35:82:ae:73:d2:d5:c0:0f:e7:d9:9c:9d:75:26:09: 5d:e6:47:fd:1c:f7:0b:24:83:f6:9b:88:9d:90:04:43:41:46: 30:18:e9:91:fc:4d:6f:b0:71:2b:13:d8:c9:57:b2:f8:85:c9: 8f:3a:9e:5b:7f:47:0c:a9:f8:98:ba:18:cb:a4:7a:d5:e6:24: 50:c1:a8:12:9f:33:83:f0:ea:ec:75:dc:21:fe:d9:b8:a0:d0: 8f:93:b1:71:7b:66:d9:58:33:40:d1:76:9f:e7:06:92:d3:25: 1e:d7:8d:22:b9:d5:b9:22:4e:ad:82:57:5e:2b:a8:85:71:87: 22:75:46:3a:ca:66:77:23:ac:85:1a:ec:b9:54:ad:a8:3d:f6: 2f:31:b4:fc:06:5f:65:2a:d8:17:1d:e8:1f:ee:45:32:92:ff: 56:e7:12:f0:9c:a2:df:6c:5e:14:57:b0:cf:6b:53:e9:1e:13: a3:2f:a4:cc:9e:ff:06:f2:08:3a:cd:87:ab:7b:91:69:fc:61: 95:53:17:51:8a:2a:ca:82:aa:05:e8:68:96:aa:8f:10:9f:86: 11:11:cc:e6:9b:fa:d6:3c:dc:8d:fc:fd:69:9f:e0:79:bb:3e: 95:5c:74:15:cb:a2:e4:3c:46:a3:ed:90:13:c7:d6:b5:28:62: c1:39:be:4e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAd4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QzlFODIxMTAvBgNVBAUTKDVFNzJBQTdENUIxRDU2MzJFNUQzM0ZFQzcyRkE3NDMz RjQ5Q0UyOUEwHhcNMjUxMjA1MDEzOTMzWhcNMjUxMjEyMDEzOTMzWjAYMRYwFAYD VQQDEw02OTMyMzdkNS0wNTdlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAz7X/x+2Tj6bJtFANsEfioR8x2IqNcrTyr2wa5VDsXinNl9YTrEr8RiZeC38k IL/c7hbRvAgOhi/6qJ0n9Nk5fx3O6DBwuGROzI8imZwpcwK43feo17H21Vc3EnbV RGc5aTEnzd7Z2bEMZyNSzm6Ti4BaiuX5nlXVl/NiW9sk/v8lvwfVoiGF++8QPlOZ ZLTPcH8McHZpoQtjayI1WVmhiZamfN0fMlkP6NZD26uu22Rk8diWeyxncN2o6vD7 XaJ40NKfytQnI16gAWNPQUz/WWpk8j3Cjej/IXYUcAA3F/KRSHe1rJGtsAmexcpx 01Pkx5MgvVzwSwL6T6XJvVU2qwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMtkNPRd DIjs2GIfqRVZTgNeJOV5MB8GA1UdIwQYMBaAFF5yqn1bHVYy5dM/7HL6dDP0nOKa MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDOUU4Mi9FQTdFNUZBNjYz NkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZqTGwwel9zY3ZwME1fU2M0 cG8uY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1huS3FmVnNkVmpMbDB6X3NjdnAwTV9TYzRwby5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD OUU4Mi9FQTdFNUZBNjYzNkYxMUVFOTdDNzRCNUNDNEY5QUUwMi9YbktxZlZzZFZq TGwwel9zY3ZwME1fU2M0cG8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQA21uw1gq5z0tXAD+fZnJ11Jgld5kf9HPcLJIP2m4idkARDQUYwGOmR /E1vsHErE9jJV7L4hcmPOp5bf0cMqfiYuhjLpHrV5iRQwagSnzOD8Orsddwh/tm4 oNCPk7Fxe2bZWDNA0Xaf5waS0yUe140iudW5Ik6tgldeK6iFcYcidUY6ymZ3I6yF Guy5VK2oPfYvMbT8Bl9lKtgXHegf7kUykv9W5xLwnKLfbF4UV7DPa1PpHhOjL6TM nv8G8gg6zYere5Fp/GGVUxdRiirKgqoF6GiWqo8Qn4YREczmm/rWPNyN/P1pn+B5 uz6VXHQVy6LkPEaj7ZATx9a1KGLBOb5O -----END CERTIFICATE-----Generated at Sat Dec 6 16:59:20 2025 by rpki-client